Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/SVJJEjTBDT7zTNzOSPRzVcrXaMk.roa
File: SVJJEjTBDT7zTNzOSPRzVcrXaMk.roa (raw, json)
Hash identifier: OFoPsYoHH09Yv7Gj3UF49/2o3Py1HmOyOytYykGDu6Y=
Subject key identifier: 49:52:49:12:34:C1:0D:3E:F3:4C:DC:CE:48:F4:73:55:CA:D7:68:C9
Certificate issuer: /CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Certificate serial: 04BD
Authority key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/SVJJEjTBDT7zTNzOSPRzVcrXaMk.roa
Signing time: Thu 16 Feb 2023 10:59:46 +0000
ROA not before: Thu 16 Feb 2023 10:59:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9678
IP address blocks: 103.152.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1213 (0x4bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Validity
Not Before: Feb 16 10:59:46 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4952491234C10D3EF34CDCCE48F47355CAD768C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:8f:88:a9:8e:b7:93:cd:4a:b6:0b:50:05:22:
20:df:32:27:39:02:ea:50:fb:e7:8e:46:39:fe:de:
7f:41:5c:77:fb:48:8f:91:11:a8:d4:ff:ba:79:00:
05:b9:75:14:e6:b5:32:53:29:90:bb:40:7a:c5:5d:
87:de:2f:8f:62:9f:37:ff:e2:f1:04:cc:e2:51:90:
9a:16:cc:2c:78:92:a8:41:f6:34:c3:cb:bc:30:bf:
a4:63:b9:a3:5e:45:3b:d4:3e:ec:4d:6b:27:44:c3:
85:a9:fd:a4:14:53:56:f3:a7:28:d8:a4:ce:66:7a:
1c:7c:24:7f:1b:1a:6f:85:f3:51:51:5c:3f:37:21:
02:16:9b:40:ec:45:c3:50:64:82:da:e5:f5:c7:d7:
fb:39:c5:23:79:9e:7a:d9:6a:43:65:ec:c3:a2:0e:
bd:10:5e:35:4e:33:0f:11:f6:e5:1d:06:7c:d4:da:
94:9a:a0:1b:6e:06:44:b5:3f:b6:39:94:67:b7:03:
ce:91:bb:67:b0:3e:58:97:91:d3:dc:51:83:a5:ea:
ec:54:3a:85:4c:dc:93:12:cf:bc:9e:95:73:44:86:
37:14:15:db:42:7f:73:77:54:9a:a8:11:93:4b:b3:
7f:6f:48:c2:71:d9:b8:7e:ba:af:a1:70:00:92:40:
57:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:52:49:12:34:C1:0D:3E:F3:4C:DC:CE:48:F4:73:55:CA:D7:68:C9
X509v3 Authority Key Identifier:
keyid:B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/SVJJEjTBDT7zTNzOSPRzVcrXaMk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.151.0/24
Signature Algorithm: sha256WithRSAEncryption
68:48:e6:38:67:48:22:fc:ea:68:4c:01:7c:2c:59:b2:76:9a:
06:66:79:fa:e7:0d:2c:5a:49:36:fb:72:9f:ee:c9:3b:ac:1c:
72:00:f6:af:4c:2b:85:19:b1:e0:08:73:1c:df:58:96:ce:b5:
bb:64:79:7e:2c:6d:60:47:ed:99:92:dd:55:11:72:c4:8e:f3:
b2:dc:57:7d:f7:f3:bb:02:76:80:2e:aa:99:c5:ba:6a:1e:7b:
22:11:5f:d5:20:7c:b0:1e:13:c3:6b:d7:93:9a:0c:d6:c8:02:
19:bc:58:c2:f7:b3:b3:09:d1:34:7e:f9:c2:7a:26:ec:0f:ac:
f2:21:dd:fe:e4:53:54:58:d0:ae:61:83:5c:d8:6e:78:9d:a5:
c9:f0:d6:46:a0:79:fa:39:ce:ba:2d:d0:e5:e1:a9:59:51:e9:
5c:1b:2f:01:5c:ef:74:e9:81:00:a0:e0:28:0a:ea:f1:e3:c7:
a2:4b:7b:b5:b6:db:40:eb:2e:4f:95:88:81:26:ce:e6:a3:7f:
c1:47:54:39:64:98:e0:5f:e2:bc:dd:0c:a9:75:64:b9:7c:4f:
e6:9a:dc:d4:5c:3d:b0:38:a7:74:2a:a9:15:f5:cd:ba:76:df:
91:d3:45:12:5e:1e:78:44:8d:64:34:36:de:99:8e:bb:2e:ad:
49:65:fe:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:01:04 2025 by rpki-client